[Freeipa-users] IPA wont start, all services fail

[Simpson Lachlan]

> -----Original Message-----
> From: Simpson Lachlan
 
> I would like to test a few things, but I'm finding it hard to find good examples.
> 
>  How can I test that the one way trust relationship between the FreeIPA server
>    and the AD DC is still in effect? (FreeIPA trusts AD, AD does not trust
> FreeIIPA).
>    I presume there is an ldapsearch or sssd command that should connect directly
> to
>    the AD server?

I should have asked for what I wanted, because of course I found the solution to what 
I *did* ask almost immediately.

Real question: If I get the SID for the "SMB Default Group", is it just a matter of editing 
the ldap directory via ldapmodify?

No, because that's again not the issue.

The samba error I get is

pdb backend ipasam:ldapi://%2fvar%2frun%2fslapd-UNIX-CO-ORG-AU.socket did not correctly init (error was NT_STATUS_INVALID_PARAMETER)

pbdedit fails on the same problem. 

How can I set the SID of the default group manually - by which I mean, using a command line tool to manipulate text (rather than a shell script or ipa-adtrust).

Cheers
L.
This email (including any attachments or links) may contain 
confidential and/or legally privileged information and is 
intended only to be read or used by the addressee.  If you 
are not the intended addressee, any use, distribution, 
disclosure or copying of this email is strictly 
prohibited.  
Confidentiality and legal privilege attached to this email 
(including any attachments) are not waived or lost by 
reason of its mistaken delivery to you.
If you have received this email in error, please delete it 
and notify us immediately by telephone or email.  Peter 
MacCallum Cancer Centre provides no guarantee that this 
transmission is free of virus or that it has not been 
intercepted or altered and will not be liable for any delay 
in its receipt.